| Release | Version |
|---|---|
| jessie | 1.3.3-1 |
| stretch | 1.3.3-4 |
| buster | 1.3.6-1 |
| bullseye | 1.3.6-1 |
| sid | 1.3.6-1 |
| Bug | jessie | stretch | buster | bullseye | sid | Description |
|---|---|---|---|---|---|---|
| CVE-2017-1000071 | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | fixed | Jasig phpCAS version 1.3.4 is vulnerable to an authentication bypass i ... |
| Bug | Description |
|---|---|
| CVE-2014-4172 | php-cas unencoded tickets |
| CVE-2012-5583 | phpCAS before 1.3.2 does not verify that the server hostname matches a ... |
| DSA / DLA | Description |
|---|---|
| DSA-3017-1 | php-cas - security update |